Secure Flash Controller

1. A computing device, comprising: a non-volatile memory (NVM) interface, to communicate with an NVM; and a processor, to: store in the NVM at least a Type-Length-Value (TLV) record comprising one or more encrypted fields and one or more non-encrypted fields, the encrypted fields comprising data encrypted with an initialization vector (IV) that depends on an address in which the TLV record is stored in the NVM, and the non-encrypted fields comprising at least a validity indicator of the TLV record; read the TLV record from the NVM; and invalidate the TLV record by modifying the validity indicator stored in the non-encrypted fields, without decryption of any of the encrypted fields.

2. The computing device according to claim 1, wherein the processor is to store the non-encrypted fields in a plaintext header of the TLV record, and the encrypted fields in an encrypted payload of the TLV record.

3. The computing device according to claim 1, wherein the IV further depends at least on a random nonce, and wherein the processor is to store the random nonce in the non-encrypted fields of the TLV record.

4. The computing device according to claim 3, wherein the processor is to update the TLV record by storing an updated version of the TLV record in a different address in the NVM, including replacing the random nonce with a different random nonce.

5. The computing device according to claim 3, wherein the processor is to re-generate the random nonce at least on reset of the processor, for use in encrypting subsequent TLV records.

6. The computing device according to claim 1, wherein the processor is to store an authentication tag in the non-encrypted fields, and, upon reading the TLV record, authenticate the TLV record using the stored authentication tag.

7. The computing device according to claim 6, wherein the authentication tag is calculated over a payload of the TLV record and over at least a part of a header of the TLV record.

8. The computing device according to claim 1, wherein the NVM comprises a Flash memory.

9. A method, comprising: storing in a non-volatile memory (NVM) at least a Type-Length-Value (TLV) record comprising one or more encrypted fields and one or more non-encrypted fields, the encrypted fields comprising data encrypted with an initialization vector (IV) that depends on an address in which the TLV record is stored in the NVM, and the non-encrypted fields comprising at least a validity indicator of the TLV record; reading the TLV record from the NVM; and invalidating the TLV record by modifying the validity indicator stored in the non-encrypted fields, without decryption of any of the encrypted fields.

10. The method according to claim 9, wherein storing the TLV record comprises storing the non-encrypted fields in a plaintext header of the TLV record, and the encrypted fields in an encrypted payload of the TLV record.

11. The method according to claim 9, wherein the IV further depends at least on a random nonce, and wherein storing the TLV record comprises storing the random nonce in the non-encrypted fields of the TLV record.

12. The method according to claim 11, and comprising updating the TLV record by storing an updated version of the TLV record in a different address in the NVM, including replacing the random nonce with a different random nonce.

13. The method according to claim 11, wherein the processor is to re-generate the random nonce at least on reset of the processor, for use in encrypting subsequent TLV records.

14. The method according to claim 9, wherein storing the TLV record comprises storing an authentication tag in the non-encrypted fields, and, upon reading the TLV record, authenticating the TLV record using the stored authentication tag.

15. The method according to claim 14, wherein the authentication tag is calculated over a payload of the TLV record and over at least a part of a header of the TLV record.

16. The method according to claim 9, wherein the NVM comprises a Flash memory.